HELLO AND WELCOME! Before you can post your question, you'll have to register -- it's completely free and registered users see less advertising! If you just want to browse through the existing questions, just select the forum that you want to visit from the selection below. Otherwise, click here to register!. We highly recommend that you print a copy of our Guide for New Members. Enjoy!

Qmail Spamming with <>

Hello, I was just scanning my server and found that I can send emails if the from address is &lt;&gt;. In other words I can use my mail server as a relay.
I have /etc/tcp.smtp set as
192.168.:allow,RELAYCLIENT=&quot;&quot;
127.:allow,RELAYCLIENT=&quot;&quot;
:allow
So I know that is supposed to help stop the relaying but how do I stop it from allowing to send with the &lt;&gt; ? Any links or info is greatly appreciated. Thanks.

Re:Qmail Spamming with <>

I just tested this out and it works, if the RCPT TO: address is of a domain I control or that is listed in my rcpthosts file. Someone could successfully spam your users using this loop hole, but the should not be able to use you as a relay to spam others.

Re:Qmail Spamming with <>

I see what your saying but do you know of a way to stop it. I get like 100 MAILER-DAEMON notices to invalid email addresses bouncing all over the place. I am not sure how to stop it.

It looks like some random *.msn or *.hotmail will try to mail an email address on my domain but the address is invalid so it sends a bounce to the sender address and then it bounces back again saying the sender is an invalid address. Drives me nuts.

Here is some of the message.

Hi. This is the qmail-send program at lemiwinks.d****.net.
I tried to deliver a bounce message to this address, but the bounce bounced!

&lt;hwmfndc@msn.com&gt;:
64.4.50.239 does not like recipient.
Remote host said: 550 Requested action not taken: mailbox unavailable
Giving up on 64.4.50.239.

Hi. This is the qmail-send program at lemiwinks.da*****.net.
I&#039;m afraid I wasn&#039;t able to deliver your message to the following addresses.
This is a permanent error; I&#039;ve given up. Sorry it didn&#039;t work out.

&lt;hudson@mydomain.com&gt;:
216.148.222.35 failed after I sent the message.
Remote host said: 554 Error: too many hops

Re:Qmail Spamming with <>

Instead of bouncing it back, just drop them.

I used to bounce the spammers but ( mostly ), they will spam you one time and their address is gone forever. So it&#039;s just more work for you.

What I currently do is have one address specially created and send all the mails for invalid address to that one. I occationally check them to make sure no legit mails are being directed. Then delete all of them at once.

Re:Qmail Spamming with <>

Might be the same stuff I&#039;m experiencing then. I&#039;m getting tons of bogus emails bounced back I think and I can&#039;t do anything about it. Every day I wake up with at least a thousand mailer-daemon failure notices in my inbox. It&#039;s VERY frustrating.

Re:Qmail Spamming with <>

arlight, i&#039;m totally at a loss. if anyone is an expert at qmail, or maybe any daemon, i need to get on contact with you. i&#039;ve had smtp re-enabled for about an hour, and i&#039;ve got 1000 bounced messages already! i don&#039;t know what to do. i&#039;m pretty sure i&#039;ve got my server configured correctly, but somehow they&#039;re still able to relay! if anyone wants to chat w/ me over AIM, MSN, ICQ, etc…my info is located in my profile. Email me with a subject line of &quot;need server help?&quot; if you can&#039;t get a hold of me over any of those mediums. any help would be GREATLY appreciated.

Re:Qmail Spamming with <>

I&#039;m glad to hear that someone else is having this issue. There has to be a way to fix this. I have googled for hours and keep coming up with &quot; Qmail by default doens&#039;t act as a relay so you don&#039;t need to take any measures&quot; I understand that they person can only mail the domains I host with the &lt;&gt; sender field but damn this is eating so much bandwidth. Please help. Thanks again.